After Wannacry, Now its Petya Ransomware hits worldwide

As you all knows Wannacry or Wcry Ransomware already created a havoc across the globe and now within the span of just 2 months, a new ransomware named as Petya Ransomware hits globally worldwide.

Initially, hackers and researchers believed that its an advanced version of Wannacry Ransomware but in actual way, there is no relation between Wannacry and Petya ransomware. Both ransomwares are using some different technique for spreading the infection. Some other names of Petya ransomwares are NotPetya, Petya or SortaPetya.

On Bleepingcomputer.com, they’ve already posted a vaccine/solution through which you can easily prevent your system from Petya Ransomware Attack.

Because of biggest outreach worldwide, so many researchers are already started their work to analyze the functionality behind Petya Ransomware.

Amit Serper is the guy who found a way to stop this malware infection, all you need to know the original name of the file.

https://twitter.com/0xAmit/status/879778335286452224

Serper initial findings have been later confirmed by other security researchers such as Trustedsec, Emsisoft etc. Simply you just need to create a file with no extension in your C:\windows directory which blocks further execution of this ransomware and will blocks the NotPetya Ransomware.

Process to Apply Vaccine for Petya Ransomware

You need to create a file named as “perfc” in “C:\Windows” directory and make it read-only. If you are unable to create a read-only file in Windows Directory then you can also follow the easiest step by creating that file with no-extension with the help of a BATCH file.

For Advanced Users, if you want to create “perfc” file manually then you need to enable one option from Folder Options, i.e. “Hide Extensions for known file types“, you simply need to uncheck this option.

After that open up the C:\Windows directory and find “Notepad.exe” file. Once you get that notepad.exe file, you just need to copy and paste the same file in same directory and the default name will be “Notepad – Copy.exe“. Press F2 to rename this file and type “perfc” and save it.

Here it will ask permissions to copy the file, press continue to create the copy of Notepad.Exe

Once the filename has been changed to perfc, you’ll get one warningerror which shows some message as shown below, simply click on YES button.

After that you need to right click on that file and click on Properties and a dialog box will popup and tick the option for “Read-Only” mode and Apply the changes.

The properties windows should close and your computer should now be vaccinated against the Petya/NotPetya Ransomware.

Here is another way of doing it.

Open a cmd prompt with Administrative permissions.

On windows 8 onwards, Right click the “start” button and click on Command Prompt(Admin).

On Windows 7 Left click on Startbutton, > All Programmes > Accessories and Right Click on Command prompt and select “Run As Administrator“

Related Articles

OurMine is a security hacker group based on Saudi Arabia and recently this week, they hacked WikiLeaks.org website with DNS Poisoning Attack. In a statement shared on the Twitter account of one OurMine member, the group said “they challenged us to hack them about a few months ago, and we’ve been working on this hack […]

Bitcoin is a form of digital currency, created and held electronically. No one controls it. Bitcoins aren’t printed, like dollars or euros – they’re produced by people, and increasingly businesses, running computers all around the world, using software that solves mathematical problems. Earlier, the Russian central bank had said it would take 2018 to consider […]

As you all knows Joomla & WordPress are the most popular CMS used by today’s webmasters. While WordPress powers 23% of all websites on the internet, it’s not the only open source content management system in the market. There are some other really awesome software like Joomla and Drupal. All three of them have a […]

Disclaimer

Yeahhub.com does not represent or endorse the accuracy or reliability of any information’s, content or advertisements contained on, distributed through, or linked, downloaded or accessed from any of the services contained on this website, nor the quality of any products, information’s or any other material displayed,purchased, or obtained by you as a result of an advertisement or any other information’s or offer in or in connection with the services herein.